I build a billing system based on FREERADIUS+ORACLE and
want to install it for some of ISP.
But I give them FREERADIUS with source, as is as on www.freeradius.org.
Is this GPL violation ??
Thanks
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hello,
I'm having trouble authenticating from VPN box through Radius server to LDAP.
My VPN uses MS-CHAP challenge/response system for authentification.
Packet that comes from VPN to Radius server looks like this:
User-Name = admin
MS-CHAP-Challenge = 0x45bc0700dd22f6795f77bbe0d986328c
Hi,
I got a freeradius configured to handle LEAP authentication.
it works with a Cisco AP Cisco Airnet 1100:
client 10.0.0.1 {
secret = secret
shortname = apcisco
nastype = cisco
}
But it fail for linksys WRT54GS:
client 192.168.1.1
{
secret = secret
Are you sure that the Linksys AP supports LEAP. LEAP is a somewhat
proprietary Cisco method that places unusual requirements on the AP
(unlike other EAP methods that are simply converted from EAP in EAPOL to
EAP in RADIUS by the AP). I know that Linksys is now owned by Cisco but
I am not sure
hi
i don't want to tell nonsense, but as far as I know, LEAP is not a pure
EAP type. the AP has thus to support it. and the WRT54 does not.
do not blame the WRT, blame LEAP and its design. and it has nothing to
do with 802.1X - standard 802.1X protocols should work with WRT54.
ciao
artur
Velikanov schrieb:
I build a billing system based on FREERADIUS+ORACLE and
want to install it for some of ISP.
But I give them FREERADIUS with source, as is as on
www.freeradius.org.
Is this GPL violation ??
IANAL, but I think the critical part probably is section 2.b) of the
Thursday, September 1, 2005, 11:59:28 AM, vous ecriviez:
GD Are you sure that the Linksys AP supports LEAP. LEAP is a somewhat
GD proprietary Cisco method that places unusual requirements on the AP
GD (unlike other EAP methods that are simply converted from EAP in EAPOL to
GD EAP in RADIUS by
Hi,
I am using FreeRADIUS version 1.0.2 and I am trying to authenticate
users using CHAP authentication. Everything works and authentication
goes through except that users are authenticated successfully( provided
userid and password id correct) irrespective of what is entered for the
shared
Iandc Davies [EMAIL PROTECTED] wrote:
Is there a way to tell freerad not to check user-password ?
Use :=, as per my previous message.
Alan DeKok.
Am I doing something really stupid, as it still requires a password field
in the sending file ! ? !
/etc/raddb/users file now has an entry
Hi,
I have a small patch for the proxy code, in particular for listen.c in CVS HEAD.
When the proxy reply comes back, only the cl-ipaddr is checked against the reply
source address, however it is possible to configure cl-acct_ipaddr differently to
cl-ipaddr (ie different auth and acct home
Le 31 août 05 à 18:53, Alan DeKok a écrit :
=?ISO-8859-1?Q?J=E9r=E9my_Cluzel?= [EMAIL PROTECTED] wrote:
Sorry, but I didn't find any references of this OID in the
creation scripts in the scripts directory (Ca.all, CA.certs...).
The only OID added seem to be 1.3.6.1.5.5.7.3.1 and
hello,
I am using digest auth and I want to upgrade from cvs version
(2005-02-19) to cvs version (2005-09-01).
everything seems to be ok except that the digest auth does not work anymore.
I have noticed, in debug mode (radiusd -X), the following differences
between the two versions:
=
Sayantan Bhowmick wrote:
Hi,
I am using FreeRADIUS version 1.0.2 and I am trying to authenticate
users using CHAP authentication. Everything works and authentication
goes through except that users are authenticated successfully( provided
userid and password id correct) irrespective of what
Hi Marc,
The only way to do this with the supplicant included with XP is to use machine
auth. This must use the same method used by the individual (i.e. EAP-TLS or
PEAP/MS-CHAPv2).
There is a checkbox that says something like Use machine credentials if
available. Check that and the machine
[EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
I am using digest auth and I want to upgrade from cvs version
(2005-02-19) to cvs version (2005-09-01).
everything seems to be ok except that the digest auth does not work anymore.
It's not just digest, it's a little wider problem than that. Try
Alan DeKok wrote:
Dan Siemon [EMAIL PROTECTED] wrote:
I should have mentioned I tried using 'other' and did not get the
desired behavior.
Please explain, then, what he desired behavior is. Include examples.
I have a bunch of RASs and PPPoE concentrators. When authenticating
Please use correct terminology.
It's AUTHENTICATION, not authentification!
To authenticate = authentication
To authorize = authorization
To account = accounting
To identify = identification
--
Groeten, Regards, Salutations,
Thor Spruyt
M: +32 (0)475 67 22 65
E: [EMAIL PROTECTED]
W:
Dan Siemon [EMAIL PROTECTED] wrote:
For example, a user bob, with simultaneous-use=1 should be able to
authenticate for PPPoE and then start his NNTP client without the first
authentication blocking the NNTP login because of the simultaneous-use=1
check.
To do that, you have to:
a)
Ive sorted through most of my issues
going from 1.0.1 to 1.0.4 but one thing I cant figure out is this:
I have this line in my /etc/raddb/users file: DEFAULT
Auth-Type = System
rad_check_password: Found Auth-Type System
auth: type System
ERROR: Unknown value specified for
Hi,
Sayantan Bhowmick schrieb:
I am trying to authenticate users using CHAP authentication.
(snipp)
users are authenticated successfully( provided userid and
password id correct) irrespective of what is entered for the
shared secret in the client. Is this a defect?
IIRC, yes, that
Iandc Davies [EMAIL PROTECTED] wrote:
Am I doing something really stupid, as it still requires a password field
in the sending file ! ? !
/etc/raddb/users file now has an entry right at the top such as this :
If you're using the latest CVS, the fix I committed earlier will help.
If you're
Vilius =?utf-8?b?xaB1bXNrYXM=?= [EMAIL PROTECTED] wrote:
But Radius can't autenticate to LDAP as there is no User-Password
attribute in the packet. (rlm_ldap: Attribute User-Password is
required for authentication).
Use LDAP as a database, not as an authentication server.
See many,
On Thu, 2005-09-01 at 12:32 +0300, Vilius Šumskas wrote:
Hello,
I'm having trouble authenticating from VPN box through Radius server to LDAP.
My VPN uses MS-CHAP challenge/response system for authentification.
Packet that comes from VPN to Radius server looks like this:
User-Name = admin
Hi,
I'm wondering if rlm_perl will support pre/post-proxy functions in the next
release?
Also, is there any chance to get bug 275 into next release?
http://bugs.freeradius.org/show_bug.cgi?id=275
Or does it have to be discussed further on the list?
--
Groeten, Regards, Salutations,
Thor Spruyt
Hi Guy,
Do you know working supplicants with a GINA module ? aegis ? secureW2 ?
Regards,
Jeremy
[EMAIL PROTECTED] a crit:
Date: Thu, 1 Sep 2005 17:10:14 +0100
From: "Guy Davies" [EMAIL PROTECTED]
Subject: RE: Windows Client Authentification bevore Domain logon
To: "FreeRadius users
Hi,
I want to convert the User-Name recieved:
\host\login.server.domain.com to username.
What's the best way to do this ?
- using preprocess module and hints file:
DEFAULTPrefix == /host, Strip-User-Name = Yes
DEFAULTSuffix == .server.domain.com, Strip-User-Name = Yes
- using
Hi,
is this a typo ?
\host\login.server.domain.com to username backslash
DEFAULTPrefix == /host, Strip-User-Name = Yes slash?
Regards,
Edvin Seferovic
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jérémy
Cluzel
Sent: Freitag, 02.
-Original Message-
From: Luis Antonio Chavez Puebla [mailto:[EMAIL PROTECTED]
Sent: Jueves, 01 de Septiembre de 2005 08:26 p.m.
To: freeradius-users@lists.freeradius.org
Subject: 4400 switch configuration and auth_module_radius.so problem
hi
i have a 4400 switch whit free radius
and i
Setup:
- FreeRADIUS 1.0.4 built with edir on FreeBSD 4.11 server.
- Cisco 3005 VPN Concentrator
- LDAP database on NetWare 6.5 server
Everything works fine when not use SSL certificate and TLS. However,
when TLS is turned on, here is what I get:
-snip-
Listening on authentication *:1812
Hi,
it may sound stupid, but - does the NetWare server has TLS / SSL turned on?
Regards,
Edvin Seferovic
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: Freitag, 02. September 2005 04:59
To: freeradius-users@lists.freeradius.org
30 matches
Mail list logo